Vulnerability Description SimpleBBS contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search module not properly sanitizing user-supplied input to undisclosed variables. This may allow an attacker to inject or manipulate SQL queries in the backend database. No further details have been provided. Solution Description Currently, there are no known upgrades, patches, or workarounds available to correct this issue. Products: * SimpleMedia SimpleBBS 1.1 Affected Vulnerability classification: * Remote vulnerability * Input manipulation attack * Impact on integrity * Exploit unavailable * Verified More info on Vuln: http://www.securityfocus.com/bid/15594